Critical severity9.1NVD Advisory· Published Apr 13, 2018· Updated Jun 17, 2026
CVE-2018-6547
CVE-2018-6547
Description
plays_service.exe in the plays.tv service before 1.27.7.0, as distributed in AMD driver-installation packages and Gaming Evolved products, contains an HTTP message parsing function that takes a user-defined path and writes non-user controlled data as SYSTEM to the file when the extract_files parameter is used. This occurs without properly authenticating the user.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
1- www.securifera.com/advisories/CVE-2018-6547/nvdThird Party Advisory
News mentions
0No linked articles in our index yet.